Implements builders for each flow status definition

[FlowsK] alert_blacklisted_country.lua [FlowsK] alert_flow_blacklisted.lua [FlowsK] alert_device_protocol_not_allowed.lua [FlowsK] external_alert.lua [FlowsK] alert_potentially_dangerous_protocol.lua [FlowsK] tls_certificate_mismatch.lua [FlowsK] tls_certificate_expired.lua [FlowsK] tls_malicious_signature.lua [FlowsK] elephant_flows.lua [FlowsK] not_purged.lua [FlowsK] web_mining.lua [FlowsK] potentially_dangerous.lua [FlowsK] alert_flow_blocked.lua
2026-05-03 01:10:10 +00:00 · 2020-04-27 12:42:26 +02:00 · 2020-04-27 12:42:26 +02:00 · ab1690ad9e
commit ab1690ad9e
parent f323aa741c
18 changed files with 258 additions and 15 deletions
--- a/scripts/plugins/web_mining/user_scripts/flow/web_mining.lua
+++ b/scripts/plugins/web_mining/user_scripts/flow/web_mining.lua
@ -23,10 +23,15 @@ local script = {
 -- #################################################################

 function script.hooks.protocolDetected(now)
-  if(flow.getnDPICategoryName() == "Mining") then
-    flow.triggerStatus(flow_consts.status_types.status_web_mining_detected, nil,
-      50--[[ flow score]], 50--[[ cli score ]], 10--[[ srv score ]])
-  end
+   if(flow.getnDPICategoryName() == "Mining") then
+      flow.triggerStatus(
+	 flow_consts.status_types.status_web_mining_detected.builder(
+	    flow_consts.status_types.status_web_mining_detected.alert_severity
+	 ),
+	 50 --[[ flow score]],
+	 50 --[[ cli score ]],
+	 10 --[[ srv score ]])
+   end
 end

 -- #################################################################